T
30 readers took our C/C++ challenge. Some solved the Linux warmup, but nobody cracked the Windows driver bug. Even LLM-assisted submissions came up short.
The walkthrough explains both, including the Windows escalation from local DoS to kernel code execution.
Best 10 submissions are still getting swag. If you won, we'll be in contact.
https://blog.trailofbits.com/2026/05/05/c/c-checklist-challenges-solved/
When Claude reasons about code, it reasons about lists, but the questions that actually matter are graph questions.
We just open-sourced Trailmark, a library that parses source code into a call graph using tree-sitter and rustworkx across 17 languages.
8 Claude skills built on its API. On Ed448, one classified 73% of surviving mutants as equivalent. Flat lists can't see that. https://blog.trailofbits.com/2026/04/23/trailmark-turns-code-into-graphs/
4 billion downloads a day run through @pypi. A missing permission check let any org member invite new owners. One of 14 findings from our second audit.
https://blog.pypi.org/posts/2026-04-16-pypi-completes-second-audit/
